Unknown · Cloudclassroom-Php Project · CVE-2025-46179
Name of the Vulnerable Software and Affected Versions:
CloudClassroom-PHP Project version 1.0
Description:
A SQL Injection issue was discovered in the askquery.php file. The `squeryx` parameter accepts unsanitized input, which is passed directly into backend SQL queries.
Recommendations:
For CloudClassroom-PHP Project version 1.0, consider sanitizing the `squeryx` parameter to prevent SQL injection attacks. As a temporary workaround, restrict access to the askquery.php file until a proper fix is applied.